THE X-CREATE FRAMEWORK - A Comparison of XACML Policy Testing Strategies
Antonia Bertolino, Said Daoudagh, Francesca Lonetti, Eda Marchetti
2012
Abstract
The specification of access control policies with the XACML language could be an error prone process, so a testing is usually the solution for increasing the confidence on the policy itself. In this paper, we compare two methodologies for deriving test cases for policy testing, i.e. XACML requests, that are implemented in the X-CREATE tool. We consider a simple combinatorial strategy and a XML-based approach (XPT) which exploit policy values and the XACML Context Schema. A stopping criterion for the test cases generation is also provided and used for the comparison of the strategies in terms of fault detection effectiveness.
DownloadPaper Citation
in Harvard Style
Bertolino A., Daoudagh S., Lonetti F. and Marchetti E. (2012). THE X-CREATE FRAMEWORK - A Comparison of XACML Policy Testing Strategies . In Proceedings of the 8th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST, ISBN 978-989-8565-08-2, pages 155-160. DOI: 10.5220/0003938301550160
in Bibtex Style
@conference{webist12,
author={Antonia Bertolino and Said Daoudagh and Francesca Lonetti and Eda Marchetti},
title={THE X-CREATE FRAMEWORK - A Comparison of XACML Policy Testing Strategies},
booktitle={Proceedings of the 8th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,},
year={2012},
pages={155-160},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0003938301550160},
isbn={978-989-8565-08-2},
}
in EndNote Style
TY - CONF
JO - Proceedings of the 8th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,
TI - THE X-CREATE FRAMEWORK - A Comparison of XACML Policy Testing Strategies
SN - 978-989-8565-08-2
AU - Bertolino A.
AU - Daoudagh S.
AU - Lonetti F.
AU - Marchetti E.
PY - 2012
SP - 155
EP - 160
DO - 10.5220/0003938301550160